CVE-2010-0886HIGH
Description
Unspecified vulnerability in the Java Deployment Toolkit component in Oracle Java SE and Java for Business JDK and JRE 6 Update 10 through 19 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
References
http://lists.apple.com/archives/security-announce/2010//May/msg00001.html
http://lists.apple.com/archives/security-announce/2010//May/msg00002.html
http://marc.info/?l=bugtraq&m=134254866602253&w=2
http://secunia.com/advisories/39819
http://sunsolve.sun.com/search/document.do?assetkey=1-66-279590-1
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1022294.1-1
http://support.apple.com/kb/HT4170
http://support.apple.com/kb/HT4171
http://www.oracle.com/technology/deploy/security/alerts/alert-cve-2010-0886.html
http://www.securityfocus.com/archive/1/516397/100/0/threaded
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
http://www.vmware.com/support/vsphere4/doc/vsp_vc41_u1_rel_notes.html
http://www.vupen.com/english/advisories/2010/1191
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14216
Details
Source: MITRE
Published: 2010-04-20
Updated: 2018-10-10
Type: NVD-CWE-noinfo
Risk Information
CVSS v2.0
Base Score: 10
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Impact Score: 10
Exploitability Score: 10
Severity: HIGH
Vulnerable Software
Configuration 1
AND
OR
cpe:2.3:a:sun:jre:1.6.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update11:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update12:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update13:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update14:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update15:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update16:*:*:*:*:*:*
cpe:2.3:a:sun:jre:1.6.0:update17:*:*:*:*:*:*
OR
Configuration 2
AND
OR
cpe:2.3:a:sun:jdk:1.6.0:update10:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update11:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update12:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update13:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update14:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update15:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update16:*:*:*:*:*:*
cpe:2.3:a:sun:jdk:1.6.0:update17:*:*:*:*:*:*
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 89674 | VMware ESX / ESXi Third-Party Libraries Multiple Vulnerabilities (VMSA-2011-0003) (remote check) | Nessus | Misc. | critical |
| 64837 | Oracle Java JDK / JRE 6 < Update 20 Multiple Vulnerabilities (Unix) | Nessus | Misc. | critical |
| 60782 | Scientific Linux Security Update : java (jdk 1.6.0) on SL4.x, SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | critical |
| 51971 | VMSA-2011-0003 : Third-party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX | Nessus | VMware ESX Local Security Checks | critical |
| 50918 | SuSE 11 Security Update : Sun Java 1.6.0 (SAT Patch Number 2340) | Nessus | SuSE Local Security Checks | critical |
| 46807 | GLSA-201006-18 : Oracle JRE/JDK: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
| 46674 | Mac OS X : Java for Mac OS X 10.6 Update 2 | Nessus | MacOS X Local Security Checks | high |
| 46673 | Mac OS X : Java for Mac OS X 10.5 Update 7 | Nessus | MacOS X Local Security Checks | high |
| 46300 | RHEL 4 / 5 : java-1.6.0-sun (RHSA-2010:0356) | Nessus | Red Hat Local Security Checks | critical |
| 45544 | Oracle Java JDK / JRE 6 < Update 20 Multiple Vulnerabilities | Nessus | Windows | critical |